Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/W_8X8pcPD5d_CO4jhkYfqwnaLNc.roa
File: W_8X8pcPD5d_CO4jhkYfqwnaLNc.roa (raw, json)
Hash identifier: 7UjpTHTPuflVqCouoxVSR8v/I0Cg40t1/xAsGRHy6H0=
Subject key identifier: 5B:FF:17:F2:97:0F:0F:97:7F:08:EE:23:86:46:1F:AB:09:DA:2C:D7
Certificate issuer: /CN=3e1f32d0cfa7a86d30e7e11a73ebbd0b24dbf41f
Certificate serial: 0187FCF5F2F2D9B70A3A5F5440F0FA1764BC
Authority key identifier: 3E:1F:32:D0:CF:A7:A8:6D:30:E7:E1:1A:73:EB:BD:0B:24:DB:F4:1F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/W_8X8pcPD5d_CO4jhkYfqwnaLNc.roa
Signing time: Mon 08 May 2023 20:03:09 +0000
ROA not before: Mon 08 May 2023 20:03:09 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 61138
IP address blocks: 89.36.199.0/24 maxlen: 24
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:87:fc:f5:f2:f2:d9:b7:0a:3a:5f:54:40:f0:fa:17:64:bc
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=3e1f32d0cfa7a86d30e7e11a73ebbd0b24dbf41f
Validity
Not Before: May 8 20:03:09 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=5bff17f2970f0f977f08ee2386461fab09da2cd7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:29:67:40:2e:e6:b6:68:8b:46:f3:49:8c:cb:
84:c9:68:ec:06:83:43:36:d0:aa:46:93:eb:bf:7a:
3f:77:0c:b4:33:0a:c0:86:ef:0e:c4:18:56:86:e2:
ed:51:7b:fe:7e:3c:cc:0b:36:39:2e:43:b4:ee:18:
a9:60:c7:70:8d:e3:3d:95:ef:77:58:1b:7d:ee:e5:
a1:99:55:3e:d1:ec:d4:d0:0c:4a:86:38:54:b8:43:
f5:13:ba:57:39:04:9d:ae:82:41:d0:d9:52:a6:cd:
59:3a:0b:0a:7e:27:2b:4f:d4:39:a9:99:0d:21:67:
31:e2:84:8d:6d:e1:69:3a:33:cc:d0:59:bf:4e:5b:
67:75:c9:71:ca:5d:9c:63:e3:22:0d:16:7e:b0:37:
49:42:97:1b:d5:28:d4:05:59:b1:14:d5:98:c7:5b:
4b:b7:83:ae:a4:45:cc:2f:75:39:34:63:a1:f8:ec:
f4:b2:0f:ee:88:0d:26:ab:e5:e3:7a:9f:7d:0e:67:
ef:6c:2a:0d:5d:75:dd:1c:1f:1b:e4:47:44:67:34:
c1:80:3d:b4:97:44:3c:32:61:d3:e8:89:cf:5a:09:
a0:0b:b5:e6:39:fe:f0:1e:bb:ee:1b:23:d1:42:0b:
90:3e:06:a6:eb:75:1c:17:cc:ed:fa:dc:ca:41:9b:
5c:83
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
5B:FF:17:F2:97:0F:0F:97:7F:08:EE:23:86:46:1F:AB:09:DA:2C:D7
X509v3 Authority Key Identifier:
keyid:3E:1F:32:D0:CF:A7:A8:6D:30:E7:E1:1A:73:EB:BD:0B:24:DB:F4:1F
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/W_8X8pcPD5d_CO4jhkYfqwnaLNc.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/de/5f048b-2df3-4140-9f4e-6068c04d1be0/1/Ph8y0M-nqG0w5-Eac-u9CyTb9B8.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
89.36.199.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:b1:a9:c3:63:fb:c2:b3:f6:1b:b3:3a:1a:e5:95:0c:af:9f:
22:39:73:c1:22:d1:0d:57:5c:8d:f5:83:ef:55:cc:59:bd:5e:
7e:c6:49:d9:37:6b:cf:ce:78:c9:6f:b4:db:8a:a4:05:bf:7e:
f4:6b:dd:ba:12:61:b5:b0:e9:50:c7:95:b8:35:60:9f:1f:e1:
24:f2:e9:0b:34:22:ab:71:b9:89:be:b6:fb:6b:4c:49:63:1a:
57:ed:ea:c5:88:0e:50:c0:06:74:e9:a5:64:1b:23:23:ce:c5:
ab:bd:12:d7:4f:db:97:4a:3b:6c:9e:73:30:58:26:7f:63:b3:
5f:69:f5:64:ea:8b:37:f4:28:40:83:12:23:39:d6:bc:9b:b5:
f4:8a:5f:2b:e3:52:2d:ba:6d:57:b4:17:0a:23:bb:d3:12:c3:
ff:03:18:97:c2:fa:34:36:93:ae:cf:1f:81:d4:f3:b8:41:98:
7f:d4:6f:33:98:11:60:d4:ec:55:3c:e8:be:d7:a7:70:9e:a4:
eb:eb:c9:ed:e9:d9:d6:98:c0:68:7d:d8:f1:98:0d:67:35:6a:
15:c4:5a:1f:0f:15:1c:b8:c9:99:2e:50:b0:71:c3:0c:2b:0a:
2d:6f:16:ff:91:f5:84:65:f0:5a:de:39:4e:22:2d:7b:02:03:
1c:4b:5f:38
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Feb 17 08:09:35 2025 by rpki-client